
United States Patent and Trademark Office 



UNITED STATES DEPARTMENT OF COMMERCE 
United States Patent and Trademark Office 

Address: COMMISSIONER FOR PATENTS 
P.O. Box 1450 

Alexandria, Virginia 22313-1450 
www.uspto.gov 



APPLICATION NO. 



HLING DATE 



FIRST NAMED INVENTOR 



ATTORNEY DOCKET NO. 



CONFIRMATION NO. 



09/814,624 



33360 



03/22/2001 



7590 



07/07/2004 



Arthur Cantu 



markd. mcswain 

IBM ALMADEN RESEARCH CENTER, IP LAW DEPT. 

650 HARRY ROAD 

CHTA/J2B 

SAN JOSE, CA 95120 



ARC920000127US1 



6270 



EXAMINER 



ART UNIT 



LE, DAVID Q 



PAPER NUMBER 



3621 



DATE MAILED: 07/07/2004 



Please find below and/or attached an Office communication concerning this application or proceeding. 



PTO-90C (Rev. 10/03) 





Application No. 

09/814,624 


Applicant(s) 

CANTU ET AL. 


Examiner 

David Q Le 


Art Unit 

3621 


M 



-- The MAILING DATE of this communication appears on the cover sheet with the correspondence address - 



Period for Reply 

A SHORTENED STATUTORY PERIOD FOR REPLY IS SET TO EXPIRE 3 MONTH{S) FROM 
THE MAILING DATE OF THIS COMMUNICATION. 

- Extensions of time may be available under the provisions of 37 CFR 1 .136(a). In no event, however, may a reply be timely filed 
after SIX (6) MONTHS from the mailing date of this communication. 

- If the period for reply specified above is less than thirty (30) days, a reply within the statutory minimum of thirty (30) days will be considered timely. 

- If NO period for reply is specified above, the maximum statutory period will apply and will expire SIX (6) MONTHS from the mailing date of this communication. 

- Failure to reply within the set or extended period for reply will, by statute, cause the application to become ABANDONED (35 U.S.C. § 133). 
Any reply received by the Office later than three months after the mailing date of this communication, even if timely filed, may reduce any 
earned patent term adjustment. See 37 CFR 1.704(b). 
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1 )□ Responsive to communication(s) filed on 22 March 2001 . 
2a)Q this action is FINAL. 2b)^ This action is non-final. 

3) n Since this application is in condition for allowance except for formal matters, prosecution as to the merits is 

closed in accordance with the practice under Ex parte Quayle, 1935 CD. 1 1 , 453 O.G. 213. 
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4) ^ Claim(s) 1-31 is/are pending in the application. 
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5) n Claim(s) is/are allowed. 

6) S Claim(s) 1-31 is/are rejected. 
?)□ Claim(s) is/are objected to. 

8) 0 Claim(s) are subject to restriction and/or election requirement. 

Application Papers 

9) 0 The specification is objected to by the Examiner. 

10)0 The drawing(s) filed on is/are: a)n accepted or b)n objected to by the Examiner. 

Applicant may not request that any objection to the drawing(s) be held in abeyance. See 37 CFR 1 .85(a). 

Replacement drawing sheet(s) including the correction is required if the drawing(s) Is objected to. See 37 CFR 1.121 (d). 
1 1 )□ The oath or declaration is objected to by the Examiner. Note the attached Office Action or form PTO-1 52. 
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a)n All b)n Some * 0)0 None of: 

1 Certified copies of the priority documents have been received. 

2. Q Certified copies of the priority documents have been received in Application No. . 

3. n Copies of the certified copies of the priority documents have been received in this National Stage 

application from the International Bureau (PCT Rule 17.2(a)). 
* See the attached detailed Office action for a list of the certified copies not received. 
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DETAILED ACTION 
Examiner's Note 

1 . The Examiner has pointed out particular references contained in the prior art of record in 
the body of this action for the convenience of the Applicant. Although the specified citations are 
representative of the teachings in the art and are applied to the specific limitations within the 
individualiclaims7otherpassages"and"figures"apply'as"wellrlt"is"requ^ 

preparing the response, to consider fully the entire references as well as the context of all 
passages in the cited references as potentially teaching all or part of the claimed inventions. 

Claim Rejections - 35 USC §102 

2. The following is a quotation of the appropriate paragraphs of 35 U.S.C. 102 that form the 
basis for the rejections under this section made in this Office action: 

A person shall be entitled to a patent unless - 

(e) the invention was described in (1) an application for patent, published under section 
122(b), by another filed in the United States before the invention by the applicant for 
patent or (2) a patent granted on an application for patent by another filed in the United 
States before the invention by the applicant for patent, except that an international 
application filed under the treaty defined in section 351(a) shall have the effects for 
purposes of this subsection of an application filed in the United States only if the 
international application designated the United States and was published under Article 
21(2) of such treaty in the English language. 

3. Claims 1-31 are rejected under 35 U.S.C. 102(e) as being anticipated by Ginter et al , 
US Patent No. 5,892,900. 



As per claims 1. 12. 23 

Ginter discloses 



Application/Control Number: 09/814,624 
Art Unit: 3621 



Pages 



1 . A [method/system/apparatus] for managing access to resources (Abstract; Background 
and Summary of the Invention; Fig 1-2, associated text), 

comprising: exchanging encryption keys (Fig 14B, 17-22, associated text; C207, L44-60; 
C209, L24-27; C210, L14-30; C212, L25-59; C213, L7-13; C214, L1-7; C214, L41 -C215, L6; 
C215, L17-29; ) 

among a first entity, second entity, third entity, and a fourth entity (Fig 77, 78, 86A; 
associated text; Fig 77: 'VDE User One" (first entity); "Client Administrator" (second entity); "VDE 
Content Creator" (third entity); "VDE RIght/Dlstrlbutor" (fourth entity); Fig 86A: "User, Corporate 
Content Repository, Creator, Commercial Content Repository"), 

wherein-each entity-has one relationship-with one other-entityrand wherein the 

encryption keys are exchanged pursuant to the relationships; and encrypting with the encryption 
keys electronic messages concerning digital enrollments ('VDE Objects") to provide to the first 
entity, wherein the digital enrollment is associated with at least one digital ticket (*VDE Objecf ) 
that authorizes access to a resource managed by the fourth entity, wherein presentation of the 
digital enrollment causes the presentation of one digital ticket associated with the digital 
enrollment to authorize the first entity to access the resource (see all above citations). 

As per claims 2, 13. and 24 . 

Ginter further discloses (see all above citations) 

... the first entity and the second entity have a first relationship such that the first entity is 
associated with the second entity and wherein the second entity and third entity have a second 
relationship through which entitles associated with the second entity can access resources 
managed by the fourth entity. 

As per claims 3. 14, and 25 . 

Ginter further discloses (see all above citations) 

... the third entity and fourth entity have a third relationship through which the fourth entity 
makes managed resources available to entitles designated by the third entity. 

As per claims 4-10, 15-21. and 26-30 . 

Ginter further discloses all the limitations of these claims. 

In Ginter's VDE system, VDE objects will be encrypted using symmetric key 
cryptosystems, public-key (PK) cryptosystems, or on a combination thereof (Col 207, lines 44- 
55). For secure communications between the nodes of GInter's VDE network, the preferred 
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embodiment uses PK cryptosystems (Col 207, lines 56-60). In addition, each node in Ginter's 
system will have the capability to generate cryptographic keys and other information that are only 
known to it and other authorized nodes, such keys to be used to encrypt transmissions between 
said nodes within the network (Col 209. lines 24-27; Col 210, lines 14-30; Col 215, lines 17-29). 

The limitations cited in claims 4-10, 15-21 , and 26-30 point to features and functions 
relating to cryptographic methods that are inherent in Ginter's invention, wherein a system, 
method, article of manufacture and computer usable media for managing resources further 
comprise: 



[claims 4 and 15] transmitting, with the fourth entity, the fourth entity encryption key to the 
third entity; transmitting, with the third entity, the third entity and fourth entity encryption keys to 
the second entity after receiving the fourth entity encryption key from the fourth entity; and 
transmitting, with the second entity, the second entity, third entity, and fourth entity encryption 
keys to the first entity after receiving the third entity and fourth entity encryption keys from the 
third entity. 

[claims 5 and 16] transmitting, with the first entity, the first entity encryption key to the 
second entity; transmitting, with the second entity, the first entity and second entity encryption 
keys to the third entity after receiving the fist entity encryption key from the first entity; and 
transmitting, with the third entity, the first entity, second entity, and third entity encryption keys to 
the first entity after receiving the first and second entity encryption keys from the second entity. 

[claims 6, 17, and 26] using, with the second entity, the first entity encryption key 
received during the exchange of encryption keys to encrypt a message including at least one 
digital enrollment to the first entity that the first entity can use to access the resource; and using, 
with the first entity, the second entity encryption key received during the exchange of encryption 
keys to decrypt the message received from the second entity providing the digital enrollment. 

[claims 7, 18, and 27] using, with the second entity, the second entity enci7ption key to 
encrypt the message including the digital enrollment before encrypting the message with the first 
entity encryption key. 

[claims 8, 19. and 28] using, with the first entity, the encryption key of the fourth entity 
received during the exchange of encryption keys to encrypt a message including the digital 
enrollment to access the resource managed by the fourth entity; and using, with the fourth entity, 
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the first entity encryption key received during the exchange of encryption keys to decrypt the 
message received from the first entity providing the digital enrollment. 

[claims 9, 20, and 29] exchanging the encryption keys with a fifth entity (Ginter, Fig 77: 
"Financial Clearinghouse"; associated text; see all above citations), further comprising: 
maintaining, with the fifth entity, a mapping of digital enrollment to associated digital tickets; 
using, with the first entity, the encryption key of the fifth entity received during the exchange of 
encryption keys to encrypt a message including the digital enrollment to transmit to the fifth entity; 
using, with the fifth entity, the first entity encryption key received during the exchange of 

— encryption keys-to decrypt-the message received-from the-first-entity-providing-the digital 

enrollment; processing the mapping to determine the digital tickets associated with the received 
enrollment; and using, with the fifth entity, the first entity encryption key received during the 
exchange of encryption keys to encrypt a message including the digital tickets to transmit to the 
first entity to use to access the resource from the fourth entity. 

[claims 10, 21 , and 30] using, with the first entity, the encryption key of the fourth entity 
received during the exchange of encryption keys to encrypt a message including the digital ticket 
received from the fifth entity to send to the fourth entity; and using, with the fourth entity, the first 
entity encryption key received during the exchange of encryption keys to decrypt the message 
received from the first entity providing the digital tickets; granting, with the fourth entity, the first 
entity access to the resource if the digital ticket included in the decrypted message authorizes 
access to the resource. 

As per claims 11, 22 and 31 . 

Ginter further discloses (C1 , L52-55; C284, L55-67) 

... the resource consists of a resource that is a member of the set of resources 
comprising: data, computer programs, and control of an electromechanical machine. 

Conclusion 

Any inquiry concerning this communication or earlier communications from the examiner 
should be directed to David Q Le whose telephone number is 703-305-4567. The examiner can 
normally be reached on 8:30am-5:30pm Mo-Fri. 
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If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, James P Trammell can be reached on 703-305-9768. The fax phone number for the 
organization where this application or proceeding is assigned is 703-872-9306. 

Information regarding the status of an application may be obtained from the Patent 
Application Information Retrieval (PAIR) system. Status information for published applications 
may be obtained from either Private PAIR or Public PAIR. Status Information for unpublished 
applications is available through Private PAIR only. For more information about the PAIR system, 
see http://pair-direct.uspto.gov. Should you have questions on access to the Private PAIR 
systemrcontact the Electronic-Business eenter-(EBe) at-866=21-7-91 97 (toll-free): — 



DQL 




